timhudson / jwt-secret
Bruteforce a JWT against a list of passwords
☆74Updated 7 years ago
Alternatives and similar repositories for jwt-secret:
Users that are interested in jwt-secret are comparing it to the libraries listed below
- Generate wordlists for fuzzing API method names☆54Updated 4 years ago
- Extract relative urls from a heap snapshot☆87Updated 3 years ago
- Go fish for AWS EIPs☆46Updated 4 years ago
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…☆47Updated 4 years ago
- ☆76Updated 4 years ago
- ☆44Updated 4 years ago
- CircleCI log and security configuration automations☆22Updated 4 years ago
- Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …☆146Updated last year
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- A simple way of sending messages from the CLI output to your Slack with webhook.☆117Updated last year
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- Takeover AWS ips and have a working POC for Subdomain Takeover.☆91Updated 2 months ago
- ☆68Updated 3 years ago
- Reclaim control of your Burp Suite Repeater tabs with this powerful extension☆67Updated 3 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆71Updated 4 years ago
- ☆56Updated 4 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆159Updated last year
- Find subdomains and takeovers.☆84Updated 2 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆80Updated 2 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- A tool to bruteforce nameservers when working with subdomain delegations to AWS.☆58Updated 5 years ago
- Get the scope of your bugcrowd programs☆67Updated 4 years ago
- Misc bounty and vulndisc things☆84Updated 4 years ago
- ☆44Updated 4 years ago
- ☆20Updated last year
- Security checks for http headers and cookies☆25Updated 4 years ago
- ☆151Updated last year
- Let's check if your target is vulnerable for client side prototype pollution.☆65Updated last year
- jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.☆67Updated 5 years ago